CVE-2005-3393

Currently unrated

Key Information:

Vendor: Openvpn
Status: Openvpn; Openvpn Access Server
Vendor: CVE Published:; 1 November 2005

Summary

Format string vulnerability in the foreign_option function in options.c for OpenVPN 2.0.x allows remote clients to execute arbitrary code via format string specifiers in a push of the dhcp-option command option.

References

http://secunia.com/advisories/17447

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/advisories/17480

third-party-advisoryx_refsource_SECUNIA

http://openvpn.net/changelog.html

x_refsource_CONFIRM

Timeline

Vulnerability published
Nov 1, 2005
Vulnerability Reserved
Nov 1, 2005